Privacy Policy (GDPR) & Data Protection

1) Data Controller

Fanshap is the Data Controller for personal data collected through the platform, pursuant to EU Regulation 2016/679 (GDPR). Contact: [email protected]

2) Categories of Data

• Identification: email, account data, public wallet addresses (Solana).
• Buyer shipping data: full name, address (including native language version), phone, optional Telegram/WhatsApp.
• Seller operational data: nickname (public), private legal name and address, social links, show platform links.
• Order and activity logs: timestamps, tracking numbers, IP/device metadata.
• Optional uploads by the user (e.g., certificates), processed only for the stated purpose.

3) Purposes and Legal Bases (GDPR Art. 6)

• Contract performance: account management, orders, payouts to Sellers. — Art. 6(1)(b)
• Legal obligations: tax, accounting, AML/anti-fraud where applicable. — Art. 6(1)(c)
• Legitimate interest: security, platform integrity, dispute handling. — Art. 6(1)(f)
• Consent (where required): communications, optional profile fields, cookies requiring consent. — Art. 6(1)(a)

4) Data Security and Retention

• Data stored on secure servers in GDPR-compliant regions.
• Typical retention: orders and logs up to 24 months; dispute records up to 24 months after closure; billing data per statutory terms.
• We do not store private keys or seed phrases.

5) Recipients and Processors

• Shipping carriers receive only essential delivery data.
• IT and security providers may process data under DPAs as processors.
• We do not sell data to third parties for advertising.

6) International Transfers

Some processors may be outside the EEA. When applicable, we use safeguards such as Standard Contractual Clauses (SCCs).

7) Blockchain Transparency (Solana)

• Public wallet addresses and on-chain transactions are inherently transparent.
• Off-chain personal data is never written on-chain by Fanshap.
• Users should consider blockchain transparency when choosing usernames and linking wallets.

8) Cookies and Similar Technologies

We use essential cookies for security and session management. Non-essential cookies (if any) are deployed only with consent. See the Cookie Policy for details.

9) Data Subject Rights

• Access, rectification, erasure, restriction, portability, and objection where applicable.
• You can request account deletion from your profile. After 30 days of deactivation, data is permanently deleted unless retention is required by law.
• To exercise your rights, contact: [email protected]
• You can lodge a complaint with your local Data Protection Authority.

10) Minors

The service is for adults only. We do not knowingly collect personal data from minors. If you believe a minor has provided data, contact us to remove it.

11) Security Incidents

We monitor for suspicious activity. In case of a data breach, we will notify users and authorities as required by law.

12) Changes to this Policy

We may update this Privacy Policy. Material changes will be announced on-site. Continued use after changes constitutes acceptance.

13) Contact

• Website: fanshap.com
• Telegram: @fanshap_com
• Email: [email protected]